Problem with z/OS keyring in Zowe LTS V1.16.0 (SMPE-Installation)

[SvenPeterson88513]

Hello, we have a problem when running zowe-setup-certificates.sh, especially running the funktion export_jwt_from_keyring in apiml_cm.sh. The function trust_zosmf returns RC=0. All the keystore directories are empty. The temp directory contains the temp-zosmf-cert. We got the message:

keytool error (likely untranslated): java.io.IOException: The private key of ZOWE_Test_GoSys_CA_2017 is not available or no authority to access the private key

Our keyring looks like:

Digital ring information for user SZOWE:                              
 Ring:                                                               
       >ZOWE_TEST_KEYRING<                                        
  Certificate Label Name             Cert Owner     USAGE      DEFAULT

 ZOWE_Test_local_ca                   CERTAUTH       CERTAUTH     NO   
 ZOWE_Test_Serv                        ID(SZOWE)      PERSONAL     YES  
 CA 2017                                    CERTAUTH       CERTAUTH     NO   
 jwtsecret                                    ID(SZOWE)      PERSONAL     NO   

We use the ZOWE_Test_local_ca as ZOWE_CERTIFICATE_LABEL and ZOWE_TEST_KEYRING as ZOWE_KEYRING in zowe-setup-keyring-certificates.env.

(formatting)

[balhar-jakub]

@jackjia-ibm Shouldn't we move this to the zowe-install-packaging?

[SvenPeterson88513]

@jackjia-ibm Shouldn't we move this to the zowe-install-packaging?

Yes, this topic match to zowe-install-packing too.

[jandadav]

@vit-tomica I believe you might know why this is. I have a feeling you have seen this before.

[vit-tomica]

Yes, I think I've seen it or at least something similar to this.

Hello @SvenPeterson88513 I can't see the "ZOWE_Test_GoSys_CA_2017" certificate in the keyring. Any idea where it could come from?